Live Chat
Monday - Friday 8am - 6pm EST Chat Now
Contact Us
Monday - Friday 8am - 8pm EST 1-866-716-6688 Other Contact Options

Cart () Loading...

    • Quantity:
    • Delivery:
    • Dates:
    • Location:



Secure JEE Web Services Application Development

Vendor# TT8500-JEE

GK# 1139

Course Overview

In addition to teaching basic programming skills, this course examines sound processes and practices that apply to the entire software development lifecycle.

In this course, you will thoroughly examine best practices for defensively coding JEE services, including XML processing. You will repeatedly attack and then defend various assets associated with fully functional web services. This hands-on approach drives home the mechanics of how to secure JEE web services in the most practical of terms.

Delivery Format Options

  • Virtual Classroom Live

    Virtual Classroom Live

    Experience expert-led online training from the convenience of your home, office or anywhere with an Internet connection.


    $2975 CAD

    4 day

  • Private Group Training

    Private Group Training

    Train your entire team in a private, coordinated professional development session at the location of your choice.

    Receive private training for teams online and in-person.

Request a date or location for this course.

What You'll Learn

  • Consequences for not properly handling untrusted data such as denial of service, cross-site scripting, and injections
  • Test web applications with various attack techniques to determine the existence of and effectiveness of layered defenses
  • Prevent and defend the many potential vulnerabilities associated with untrusted data
  • Concepts and terminology behind supporting, designing, and deploying secure services
  • Problems associated with service security and the potential risks associated with those problems
  • Best practices for supporting the many security needs of services.
  • Vulnerabilities associated with authentication and authorization within the context of web services
  • Detect, attack, and implement defenses for authentication and authorization functionality
  • Dangers and mechanisms behind Cross-Site
  • Scripting (XSS) and Injection attacks
  • Detect, attack, and implement defenses against XSS and Injection attacks
  • Concepts and terminology behind defensive, secure, coding
  • Threat Modeling as a tool in identifying software vulnerabilities based on realistic threats against assets
  • Static code reviews and dynamic application testing for uncovering vulnerabilities in Java-based web services
  • Design and develop strong, robust authentication and authorization implementations within the context of JEE
  • Fundamentals of XML Digital Signature as well as how it can be used as part of the defensive infrastructure for web services
  • Fundamentals of XML Encryption as well as how it can be used as part of the defensive infrastructure for web services
  • Vulnerabilities that are specific to XML and XML parsers


  • Familiarity with Java and JEE is required
  • Programming experience is highly recommended
  • At least six months of Java and JEE working knowledge recommended
  • You should have a working knowledge in the following topics or attend these courses as a prerequisite:

Who Needs To Attend

Developers who wish to develop secure applications

Course Outline

Download Course Outline